-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sat, 28 Jun 2025 16:26:50 +0200 Source: nagvis Architecture: source Version: 1:1.9.25-2+deb11u2 Distribution: bullseye-security Urgency: medium Maintainer: Debian Nagios Maintainer Group <pkg-nagios-devel@lists.alioth.debian.org> Changed-By: Daniel Leidert <dleidert@debian.org> Closes: 1106686 Changes: nagvis (1:1.9.25-2+deb11u2) bullseye-security; urgency=medium . * Non-maintainer team upload by the Debian LTS team. * d/patches/CVE-2024-38866.patch: Add patch to fix CVE-2024-38866. - Fix possible livestatus injection via dynmaps (closes: #1106686). * d/patches/CVE-2024-47090.patch: Add patch to fix CVE-2024-47090. - Fix potential XSS via WYSIWYG editor (closes: #1106686). Checksums-Sha1: fab90a754fd8e0031afa55f0ee05310fde40bdab 2120 nagvis_1.9.25-2+deb11u2.dsc b202ad06413911a928a58783308217c3ac45e2ab 1805057 nagvis_1.9.25.orig.tar.gz a6a9472f99fddd5105ca922a29fde57b178b5e7c 179616 nagvis_1.9.25-2+deb11u2.debian.tar.xz 2b610dcecdd4ddce4528d8e7f734e31a7e9927bf 6612 nagvis_1.9.25-2+deb11u2_amd64.buildinfo Checksums-Sha256: d5c8a9a39dd7378441b670a18da8672f6dd7788b70ead88db4050e9b5d0daa4e 2120 nagvis_1.9.25-2+deb11u2.dsc 4699f6ebb8d7edefc1369d99f91a51df2a038b1e2bbfafc5dac57d7763964edf 1805057 nagvis_1.9.25.orig.tar.gz 94e86c6f4cef8c6eeb94a36c221d5df20dffa4bc61387dbc6a78615410cd4e3f 179616 nagvis_1.9.25-2+deb11u2.debian.tar.xz 01b3d235c4cde0919bfe8b6ec9bda84b931744520260c11ae21e5455360253db 6612 nagvis_1.9.25-2+deb11u2_amd64.buildinfo Files: de8fac1b5bc0cac4aa7006bb417cb4be 2120 net optional nagvis_1.9.25-2+deb11u2.dsc 3538306bde40692429ac0bdfc35cbe9c 1805057 net optional nagvis_1.9.25.orig.tar.gz 81a225cb137729005fe861f493965e21 179616 net optional nagvis_1.9.25-2+deb11u2.debian.tar.xz d80d2e7ddb0a982b2c2a4b5f8cad7975 6612 net optional nagvis_1.9.25-2+deb11u2_amd64.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEvu1N7VVEpMA+KD3HS80FZ8KW0F0FAmhf/CkACgkQS80FZ8KW 0F1XvQ/+NLKQ36EhHeu74pE1HJKOmlF8IP5PhpVdtnz51MnkKVxMFFqhuf18w1Zq oD/62Yf9v39ss1ro4Htq1G0cUhTjk8d1aoehaJut1dKEb+k3rud7zALTEtWxtWeN 1DADIvvs5Ql9UPhWaN+h6WIzHoZD9ONGsua49btk/CKp8cG8waRIzxHD1rHVDqWR zeJnnRB5lgI5ulW1E+4GcbwYgYCfO0WDHudRqKy8+bSQLF5nO4pK+qcydgCNWrok V1uFOYzz0+AB5IsZuptCxHV9dC+l4q0RN/tbQO93EzzPhJHvcmKlXLdvywi8pz8g hAiRfOqzzgtsYatA8bkpRzDevwJPNQlt0H1i+p9smRcym6vICbRp1T081T24DZLa pnUDdNeSvOUeFseFcTKZL0eR3gdmUwdwwtDCovE1LYicw9QZNYeNxTudPdBEBDaN oIPnGk+i0xmXW0UU4FCPRpGNjoPtCamy591xkamDvxfkZ99UsaslIeEtgbCG25Ia QHaYd8ZfxMgjrXpHiUoM38vUyQm7J6fR0A7ihlQNEZ7VsIAiMTs/rkqpfss7bcHC e5ueX5UJf09IgpQtS7c3ZCeKx6iInxq9PJDcweZ085nLT/ToA9kMolD6jrDjbB5y xz9w00I4Mg3BeSt4tPM9b4iMqsH1x2XVPAJCXTrrZ24aG0SW3PU= =EEwJ -----END PGP SIGNATURE-----